storage-cleanup
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses standard macOS commands like
du,df, andlsfor read-only disk scanning and reporting. - [COMMAND_EXECUTION]: For the cleanup phase, the skill utilizes destructive commands such as
rm -rfto remove identified directories and files. This behavior is mitigated by strict internal instructions requiring explicit user confirmation before execution. - [COMMAND_EXECUTION]: It manages file permissions and system attributes using
chmodandxattrto handle protected files during cleanup (e.g., removing Cursor's provenance attribute). - [COMMAND_EXECUTION]: The skill leverages official CLI cleanup commands for package managers (e.g.,
npm cache clean,pip cache purge) which is a recommended security and stability practice.
Audit Metadata